3rd Party Risk Management

Getting Value From Managed Security Services Providers

BlueScope Steel's Catherine Buhler Offers Real-World Insights
Catherine Buhler, CISO, BlueScope Steel

Organizations rely on a variety of outside firms to deliver security services. But how can they get the most value? Catherine Buhler of BlueScope Steel shares how she challenges managed security services providers.

See Also: OnDemand | Secure Your Vendor's Access from Attacks on Third-party Vulnerabilities

In an interview at Information Security Media Group's recent Sydney Fraud and Breach Prevention Summit, Buhler also discusses:

  • The differences in security practices in the telecommunications and manufacturing industries;
  • The most useful kind of threat intelligence; and
  • How to get MSSPs to match your own risk framework.

Buhler is CISO of BlueScope Steel, which is the world's third-largest producer of coated and painted steel products. She previously worked for Telstra in roles including national security manager and security audit compliance manager. She's also spent time in senior information security roles with ANZ Bank, Australia Post, IAG and GE Capital.


About the Author

Jeremy Kirk

Jeremy Kirk

Executive Editor, Security and Technology, ISMG

Kirk was executive editor for security and technology for Information Security Media Group. Reporting from Sydney, Australia, he created "The Ransomware Files" podcast, which tells the harrowing stories of IT pros who have fought back against ransomware.




Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing govinfosecurity.com, you agree to our use of cookies.